SECURE KUBERNETES LIKE A PRO | HOW DEVSECOPS ENGINEERS SECURE Kubernetes ?

Рет қаралды 15,637

Күн бұрын

Support my work
www.buymeacoffee.com/abhishekprd Security is a journey.
Security is a very very important aspect of DevSecOps. One should definitely know how to secure their Kubernetes clusters. If not, the clusters will be compromised and sensitive information will be leaked and application can be hacked. Are you an aspiring DevSecOps engineer ? Do you want to learn how to secure your Kubernetes clusters like a Pro ? Watch the video till the end.
Instagram: / abhishekveeramalla_off...
Video Notes in GitHub
github.com/iam-veeramalla/Kub...
FREE DEVOPS COURSE
• DEVOPS ZERO TO HERO CO...
Telegram channel
telegram.me/abhishekveeramalla
About me:
-----------------
LinkedIn: / abhishek-veeramalla-77...
GitHub: github.com/iam-veeramalla
Medium: / abhishekveeramalla-av
KZbin: / @abhishekveeramalla .
.
Disclaimer: Unauthorized copying, reproduction, or distribution of this video content, in whole or in part, is strictly prohibited. Any attempt to upload, share, or use this content for commercial or non-commercial purposes without explicit permission from the owner will be subject to legal action. All rights reserved.

Пікірлер: 98

@samikshasharma3544 5 ай бұрын

Thanks!

@AbhishekVeeramalla 5 ай бұрын

Thanks for supporting the channel 😍

@anjaliranot897 10 ай бұрын

you have so muck knowlegde and patience to explain all concept so nicely

@VikramSharvansh 11 ай бұрын

Great efforts abhishek👏👏 Each & every video of u making the devops/Kubernetes learning journey simple & interesting. Thanks once again.

@AbhishekVeeramalla 11 ай бұрын

😍

@jackayuk424 2 ай бұрын

The best one best this space thanks a million sir ❤

@akhilc8211 11 ай бұрын

thank you anna my day finishes with your videos......

@AbhishekVeeramalla 11 ай бұрын

😍

@SivakumarA-lx5dj 11 ай бұрын

@Abhishek, Thanks a lot for your video on most awaited topic

@AbhishekVeeramalla 11 ай бұрын

Welcome

@gouravchhabra6142 11 ай бұрын

Would like to add few security aspects which I have been using so hope others can also take them into consideration: 1. Applying k8s policies using KYVERNO to restrict security policies in k8s resources. 2. Using Manifest/Helm scanners tools like CHECKOV or DATREE to avoid any misconfigurations or vulnerabilities in them. 3. Using cluster scanners or RBAC Visulizers like KUBESCAPE. 4. Using Docker image signing and attestation tool like COSIGN. 5. Following CIS benchmarks for K8s or Cloud on which k8s hosted. 6. Securing Ingress using TLS. 7. Secrets Encryption using sealed secrets or external secret operator. 8. Using Distroless images for building containers.

@AbhishekVeeramalla 11 ай бұрын

1st point is covered in latest video Will do others soon. Thanks for sharing Gourav

@evansdanso2374 11 ай бұрын

Abhishek, you're great!!! I have taken full DevOps classes but never understood a lot until I started following you! I came into Devops with a little IT background as a data analyst. Thank a lot!!! Can you do a short video to explain various web applications( Nginx, apache tomcat, etc) and how often DevOps Engineer encounter them..and other applications that DevOps Engineers most often deploy. Please 🙏...

@AbhishekVeeramalla 11 ай бұрын

Thanks and noted

@pjj7466 2 ай бұрын

Fantastic session bro.

@nikhilmeshram4376 11 ай бұрын

beautiful explanation sir....... thank you so much....👌👌👌👌👌

@AbhishekVeeramalla 11 ай бұрын

❤️

@kaverichowdary6637 11 ай бұрын

East are West abhishek anna is best 😊

@AbhishekVeeramalla 11 ай бұрын

Haha

@rohanrustagi7857 11 ай бұрын

So true anna

@VaibhavSupe 11 ай бұрын

Hello Abhishek. Thank you so much….really hat’s off you for such an amazing content with easily understandable language & your dedication🤩🤩🤩 If possible please make more such videos on Security / DevSecOps related topics. Thanks a lot 🤩🤩🤩

@AbhishekVeeramalla 11 ай бұрын

😍

@nishanthhg6437 11 ай бұрын

Thank you for all the contents

@AbhishekVeeramalla 11 ай бұрын

Welcome

@princeraghu3807 11 ай бұрын

Its very quality & valuable content brother😊

@AbhishekVeeramalla 11 ай бұрын

😍

@sonalimohapatra880 11 ай бұрын

Yeah Abhishek bro is the best ❤❤

@AbhishekVeeramalla 11 ай бұрын

😍

@rohita9689 11 ай бұрын

Papa you are giving such gifts that i can't even explain.. Thank you ❤

@AbhishekVeeramalla 11 ай бұрын

😍

@phaneerameswarareddychilum7189 11 ай бұрын

Abhisek your content is great and the way you teach is really superb. only one correction, I guess the image scan command is docker snyk not docker synk if I am correct. please correct me if I am wrong

@AbhishekVeeramalla 11 ай бұрын

U r correct .. sorry for the typo and mispronunciation

@haroon.niamat 11 ай бұрын

Informative..!!👍

@AbhishekVeeramalla 11 ай бұрын

😍

@lakshmanababu4279 2 ай бұрын

Thanks

@AbhishekVeeramalla 2 ай бұрын

Thanks for contributing to the channel

@senthilkumar5129 11 ай бұрын

Thank you

@AbhishekVeeramalla 11 ай бұрын

Welcome

@shalubajpai4225 11 ай бұрын

Great videos Abhishek! Can you plz make videos on how to handle volume in kubernetes?

@AbhishekVeeramalla 11 ай бұрын

Noted

@tanayabanerjee2380 6 ай бұрын

Hi,,, Please make the demo part on Rbac , Network policy and rest of the topics ...it will be very helpful 🙏🙏

@AbhishekVeeramalla 6 ай бұрын

Sure

@ketanmorey1953 11 ай бұрын

Abhishek bhai❤

@AbhishekVeeramalla 11 ай бұрын

Welcome

@ganeshgoudru8444 11 ай бұрын

Hi Abhishek, is it possible to make hands on in this video? Bcz usually in EKS we won’t be maintaining control plane right so how to implement security for eks clusters?

@saswatpriyabrat 11 ай бұрын

This is an excellent Video with a bundles of Knowledge....Thanks for this awesome Video ❤

@AbhishekVeeramalla 11 ай бұрын

😍

@rohithreddy6853 11 ай бұрын

Thnx anna If possible please do a video on how to make ATS resume for freshers on AWS with DevOps please anna

@AbhishekVeeramalla 11 ай бұрын

Noted

@twizzoe 11 ай бұрын

@Abhishek, thanks for this detailed lecture. I need clarification on securing the API-SERVER. If we are using Amazon EKS, I thought since Amazon handles the control plane where the API-SERVER is located, it handles the security of every component involved. With this video, I am assuming we still need to take an extra step to secure it

@AbhishekVeeramalla 11 ай бұрын

Will cover that

@techairenglish1357 11 ай бұрын

If I am using AKS, then is the API server is already secured since master node is managed by Azure or it is not required?

@krishnakumarkumar5710 11 ай бұрын

Good content for free is dream in this selfish world. But some worriers like Abhishek prove it wrong...

@AbhishekVeeramalla 10 ай бұрын

Thanks a lot

@sth5287 11 ай бұрын

Hi abhishek, i love your content.. Can you please make a series on azure devops ??? Please.... Please...

@AbhishekVeeramalla 11 ай бұрын

Noted

@sth5287 11 ай бұрын

@@AbhishekVeeramalla thank you abhishek ♥️♥️

@ifirefox1 4 ай бұрын

Hi Abhishek, thank you so much for content, i am more focussed towards devsecops, should i finish your zero to hero kubernetes coarse before i start this video?

@AbhishekVeeramalla 4 ай бұрын

If u don’t have understanding of k8s yes

@tarunmeher5464 11 ай бұрын

Hey Abhishek.. Can you give us a trick or any plan that we can remember all these aws service, kubernetes topic so that it will be easy for the interview,, because there are so many topic on devops and not every one have sharp minded.. so hope you understand and give us a solution for this.. Thank you❤

@kundalakshmidevi4449 7 ай бұрын

very nice explanation abhi sir but i have a doubt here you have mentioned docker scan in github repo but in video you said docker sync . Is it docker scan or docker sync??????

@AbhishekVeeramalla 7 ай бұрын

synk is a tool that performs scanning on docker images. docker scan internally uses synk.

@ThecookBoy 11 ай бұрын

Hai Abhishek. Verramalla can we expect this in the practical video it might be helpful for a better understanding

@AbhishekVeeramalla 11 ай бұрын

It will be too lengthy .. I will think of something

@kodjoviamedimele3066 11 ай бұрын

Hi sir. First of all thank you for the quality of your contents. I have an issue when implementing the cicd with Argo. I import the repo and when it comes to the Jenkins file I am lost. Wondering if you can go over how you configure it ?

@AbhishekVeeramalla 11 ай бұрын

Please watch the ultimate cicd pipeline viceo

@kodjoviamedimele3066 11 ай бұрын

@@AbhishekVeeramalla I was doing it with the video but I didn’t see the part where you went through the Jenkins file configuration. I tried to figure out but with no success. I will try again today.

@jaganarumugam8527 11 ай бұрын

Which part you faced issue..

@twizzoe 11 ай бұрын

I would like to inquire if Vault can be used for encryption of the ETCD

@AbhishekVeeramalla 11 ай бұрын

I haven’t explored that much .. sorry

@ganeshgoudru8444 11 ай бұрын

Hi Abhishek thanks for the video...one doubt the command is snyk or synk?

@AbhishekVeeramalla 11 ай бұрын

snyk , sorry for the typo

@ganeshgoudru8444 11 ай бұрын

@@AbhishekVeeramalla thanks Abhishek. Just wanted to clarify 😊

@yuvichh 11 ай бұрын

31:00, is it Docker scout or Synk. I mean sync is another project and I can see the Docker Scout!

@AbhishekVeeramalla 11 ай бұрын

Snyk

@ashuofficial28 11 ай бұрын

Ingress graphana prompetus those all use in Aks na not in use those all in eks.

@AbhishekVeeramalla 11 ай бұрын

They are used in aws as well

@khagolakalyan 11 ай бұрын

Nice Video...Can you Please explain the link between Google optimize and A/B testing with Kubernetes cluster and One more Keycloak.link.woth oidc..What's the link between these two..I m getting confused..

@AbhishekVeeramalla 11 ай бұрын

Ok noted

@khagolakalyan 11 ай бұрын

Thanks for your reply@@AbhishekVeeramalla ... Eagerly Waiting for your Video...😍😍

@kishorkhilare6375 11 ай бұрын

Sir, Can you explain in hindi also

@AbhishekVeeramalla 11 ай бұрын

Many subscribers don’t understand hindi bro

@averagebadmin10player 10 ай бұрын

Cluster monitoring can't be done by Prometheus or grafana ?

@AbhishekVeeramalla 10 ай бұрын

For example ?

@averagebadmin10player 10 ай бұрын

@@AbhishekVeeramalla 6th point of this video you told Sysdig works like a deamon set if some hacker is attacking in that way can't be done by prometheus and grafana ?

@napoleanbonaparte9225 11 ай бұрын

Pod container security kuda adutunaaru anna

@AbhishekVeeramalla 11 ай бұрын

Adi kuda cheddam aithe emundi

@nishanthhg6437 11 ай бұрын

First view sir

@AbhishekVeeramalla 11 ай бұрын

Thanks alot

@DanielSmith-hd9iq 10 ай бұрын

do you mean docker snyk here?

@AbhishekVeeramalla 9 ай бұрын

yes

@lakshmisucharitha3529 7 ай бұрын

where is the practical sesion video for all these 7 security steps ? Can any one ping here the link

@udaykumar-tb5kn 9 ай бұрын

Bro. This security of kubernetes playliat or devops hero zero playlist confused with which playlist and what order should be flowed pls tell

@AbhishekVeeramalla 9 ай бұрын

This video is not part of devops zero to hero. Please check again. This is only part of kubernetes playlist and if u want to learn kubernetes advanced u need to Learn this

@udaykumar-tb5kn 9 ай бұрын

@@AbhishekVeeramalla understood bro thanks lot for detailed explanation